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B» AMENDMENTS TO THE CLAIMS 

1. (Currently Amended) A method for analyzing database 
security, said method comprising: 

connecting to one or more servers f wherein each server 
includes an instance, the instance including one or more 
databases f wherein at least one of the databases is 
selected from the group consisting of a database, a 
backup database , and a directory of databases ; 
selecting one of the databases; 

identifying a user id, wherein the user id has access to 
the selected databases; 

retrieving a permitted user id list corresponding to the 
selected database; 

determining whether the user id is included in the 
permitted user id list, the determining further 
comprising : 

identifying a violation message type wherein the 
violation message type is selected from the group 
consisting of a removed users check, a DB files and 
logs access check, and a DB backup files and, logs 
access check ; and 
reporting the user id in response to the determining* 

2. (Original) The method as described in claim 1 further 
comprising: 

retrieving a resolution corresponding to the determining? 
and 

including the resolution in the reporting. 

3. (Cancelled) 
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4. (Cancelled) 

5. (Original) The method as described in claim 1 wherein the 
connection is secure. 

6. (Original) The method as described in claim 1 wherein the 
permitted user id list is selected from the group 
consisting of a database instance owner, a sysadm group, 
and a sysmaint group. 

7. (Original) The method as described in claim 1 wherein the 
servers are on different operating platforms. 

8. (Currently Amended) An information handling system 
comprising : 

one or more processors; 

a memory accessible by the processors; 

one or more nonvolatile storage devices accessible by the 
processors; and 

a database analysis tool to analyze database security, 

the database analysis tool including: 

means for connecting to one or more servers , wherein 
each server includes an instance, the instance 
including one or more databases , wherein at least 
one of the databases is selected from the group 
consisting of a database, a backup database, and a 
directory of databases ; 

means for selecting one of the databases; 

means for identifying a user id, wherein the user id 

has access to the selected databases; 
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means for retrieving a permitted user id list 

corresponding to the selected database; 

means for determining whether the user id is 

included in the permitted user id list / the 

determining further comprising; 

identifying a violation message type wherein 
the violation message type is selected from the 
group consisting of a removed users check, a DB 
files and logs access check, and a DB backup 
files and logs access check ; and 

means for reporting the user id in response to the 

determining. 

9. (Original) The information handling system as described 
in claim 8 further comprising: 

retrieving a resolution corresponding to the determining; 
and 

including the resolution in the reporting. 

10. (Cancelled) 

11 . (Cancelled) 

12. (Original) The information handling system as described 
in claim 8 wherein the permitted user id list is selected 
from the group consisting of a database instance owner , a 
sysadm group, and a sysmaint group. 

13. (Original) The information handling system as described 
in claim 8 wherein the servers are on different operating 
platforms . 
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14. (Currently Amended) A computer program product stored in 
a computer operable media for analyzing database 
security, said computer program product comprising; 
means for connecting to one or more servers, wherein each 
server includes an instance, the instance including one 
or more databases , wherein at least one of the databases 
is selected from the group consisting of a database, a 
backup database, and a directory of databases ; 
means for selecting one of the databases; 
means for identifying a user id, wherein the user id has 
access to the selected databases; 
means for retrieving a permitted user id list 
corresponding to the selected database; 

means for determining whether the user id is included in 
the permitted user id list, the determining further 
comprising: 

identifying a violation message type wherein the 
violation message type is selected from the group 
consisting of a removed users check, a DB files and 
logs access check, and a DB backup files and, logs 
access check ; and 

means for reporting the user, id in response to the 

determining. 

1.5. (Original) The computer program product as described in 
claim 14 further comprising: 

retrieving a resolution corresponding to the determining; 
and 

including the resolution in the reporting. 
16. (Cancelled) 
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17. (Cancelled) 

18* (Original) The computer program product as described in 
claim 14 wherein the connection is secure. 

19. (Original) The computer program product as described in 
claim 14 wherein the permitted user id list is selected 
from the group consisting of a database instance owner, a 
sysadm group, and a sysmaint group. 

20. (Original) The computer program product as described in 
claim 14 wherein the servers are on different operating 
platforms. 



Docket No. AUS920010993US1 Page 7 Atty Ref . : 29o. IBM-1057 

Simon, et. al. - 10/015 r 291 

PACE 10/16 * RCVD AT 1/18/2005 12:45:20 PM [Eastern Standard Time] ■ 8VR:USPTO-EFXRF-1/0 • DNI8:8729306 * CSID: 512301 6742 * DURATION (mm-ss): 05-14 



